-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
______________________________________________________________________________
SUSE Security Announcement
Package: php4,php5
Announcement ID: SUSE-SA:2007:032
Date: Wed, 23 May 2007 12:00:00 +0000
Affected Products: SUSE LINUX 9.3
SUSE LINUX 10.0
SUSE LINUX 10.1
openSUSE 10.2
UnitedLinux 1.0
SuSE Linux Enterprise Server 8
SuSE Linux Openexchange Server 4
SuSE Linux Standard Server 8
SuSE Linux School Server
SUSE LINUX Retail Solution 8
SUSE SLES 9
Open Enterprise Server
Novell Linux POS 9
SLE SDK 10
SUSE SLES 10
Vulnerability Type: remote code execution
Severity (1-10): 7
SUSE Default Package: yes
Cross-References: CVE-2007-0988, CVE-2007-1001, CVE-2007-1375
CVE-2007-1376, CVE-2007-1380, CVE-2007-1383
CVE-2007-1453, CVE-2007-1454, CVE-2007-1460
CVE-2007-1461, CVE-2007-1484, CVE-2007-1521
CVE-2007-1522, CVE-2007-1583, CVE-2007-1700
CVE-2007-1717, CVE-2007-1718, CVE-2007-1824
CVE-2007-1889, CVE-2007-1900
Content of This Advisory:
1) Security Vulnerability Resolved:
Several security problems in PHP
Problem Description
2) Solution or Work-Around
3) Special Instructions and Notes
4) Package Location and Checksums
5) Pending Vulnerabilities, Solutions, and Work-Arounds:
See SUSE Security Summary Report.
6) Authenticity Verification and Additional Information
______________________________________________________________________________
1) Problem Description and Brief Discussion
Numerous numerous vulnerabilities have been fixed in PHP.
Most of them were made public during the "Month of PHP Bugs" project
by Stefan Esser and we thank Stefan for his reports.
The vulnerabilities potentially lead to crashes, information leaks
or even execution of malicious code.
A lot of them are fixed in the last PHP security releases, 5.2.2
and 4.4.7.
CVE-2007-0988 / MOPB-05-2007: A unserialize problem in the zend_hash_init
function could be used for a denial of service attack.
CVE-2007-1001: Multiple integer overflows in the GD library embedded
in PHP could potentially be used to execute code via crafted Wireless
Bitmap images.
CVE-2007-1375 / MOPB-14-2007: An integer overflow in the substr_compare
function allows context-dependend attackers to read out memory of
the PHP interpreter.
CVE-2007-1376 / MOPB-15-2007: The shmop function does not validate
its arguments, allowing context-dependend attackers to read and write
arbitrary memory locations.
CVE-2007-1380 / MOPB-10-2007: The php_binary serialization handler
in the session extension allows context-dependend attackers to obtain
sensitive information via a buffer over-read.
CVE-2007-1383 / MOPB-01-2007: An integer overflow in the 16 Bit
reference counter in PHP4 allows context-dependend attackers to
execute arbitrary code by causing a value to be destroyed twice.
CVE-2007-1453 / MOPB-19-2007: A buffer underflow in the
PHP_FILTER_TRIM_DEFAULT macro in the ext/filter extension allows
context-dependend attackers to potentially execute arbitrary code.
CVE-2007-1454 / MOPB-18-2007: The ext/filter extension in PHP when
used with the FILTER_FLAG_STRIP_LOW flag does not properly strip HTML
tags, allowing cross site scripting.
CVE-2007-1460 / MOPB-20-2007: The zip:// URL wrapper provided by
the PECL zip extension did not implement safemode or open_basedir
checks, allowing attackers to read ZIP files outside of the intended
directories.
CVE-2007-1461 / MOPB-21-2007: The bzip2:// URL wrapper did not
implement safemode or open_basedir checks, allowing attackers to read
BZIP2 archives outside of the intended directories.
CVE-2007-1484 / MOPB-24-2007: The array_user_key_compare function
makes erroneous calls to zval_dtor which triggers memory corruption
and allows local users to bypass safe_mode and potentially
execute arbitrary code via a certain unset operation after
array_user_key_compare has been called.
CVE-2007-1521 / MOPB-22-2007: A double free vulnerability in PHP
allows context-dependend attackers to potentially execute arbitrary
code by interrupting the session_regenerate_id function. Note the
double free attacks are no longer possible in newer SUSE Linux versions
(major version 10 and better).
CVE-2007-1522 / MOPB-23-2007: A double free vulnerability in the
session extension in PHP5 allows context-dependend attackers to execute
arbitrary code via illegal characters in a session identifier. Note the
double free attacks are no longer possible in newer SUSE Linux versions
(major version 10 and better) so this does not affect SUSE Linux.
CVE-2007-1583 / MOPB-26-2007: The mb_parse_str function did set the
internal register_globals flag and in some error cases did not reset
it back to its original value, allowing further attacks which require
register_globals to be enabled.
CVE-2007-1700 / MOPB-30-2007: The session extension calculates the
reference count for the session variables incorrectly, potentially
allowing context-dependend attackers to execute arbitrary code via
a crafted string the session_register function.
CVE-2007-1717 / MOPB-33-2007: The mail function truncated E-Mail
messages at the first ASCIIZ (\0) byte, which might allow context
dependend attackers to prevent intended information being delivered.
CVE-2007-1718 / MOPB-34-2007: CRLF injection in the mail function
allowed remote attackers to inject arbitrary headers and so potentially
conduct SPAM attacks.
CVE-2007-1824 / MOPB-42-2007: A buffer overflow in the
php_stream_filter_create function allows remote attackers to cause
a crash via a php://filter/ URL that has a name ending in the '.'
character.
CVE-2007-1889 / MOPB-43-2007 / MOPB-44-2007: Integer signedness
errors in the _zend_mm_alloc_int function in PHP 5.2.0 allows remote
attackers to execute arbitrary code via a large emalloc request and
so potentially execute arbitrary code.
CVE-2007-1900 / PMOPB-45-2007: A CRLF injection vulnerability in the
FILTER_VALIDATE_EMAIL filter in ext/filter in PHP 5.2.0 and 5.2.1
allows context-dependend attackers to inject arbitrary e-mail headers via an e-mail address with a '\n' character.
2) Solution or Work-Around
There is no known workaround, please install the update packages.
3) Special Instructions and Notes
None.
4) Package Location and Checksums
The preferred method for installing security updates is to use the YaST
Online Update (YOU) tool. YOU detects which updates are required and
automatically performs the necessary steps to verify and install them.
Alternatively, download the update packages for your distribution manually
and verify their integrity by the methods listed in Section 6 of this
announcement. Then install the packages using the command
rpm -Fhv
to apply the update, replacing with the filename of the
downloaded RPM package.
x86 Platform:
openSUSE 10.2:
78de28e9624083dd9e40b5399652da81
c33bd5475e8fd93e9a2b3f3eb083d713
78bf90c5205b9d79464b09993e0a0727
a68ad4239f59242819843ea6f55403ae
ed82400fbcdfd3b9369ce1e0a582c85f
e692bf8e4aa42f612eeb4281514567b3
8972a736c01297ae108c1507bd78ebd4
1e4c7a4f1ba6affcc6a1caaa654263fd
7dba1da43a9eb51c97b77587fb272317
f2bc20a447ec3bfe52665d75c65c632f
3d1858764803bec605bc2a45077d6c96
5280e9ec5df7a3bab0b5c8d2b9703b38
a087f98629528040d02376ee547d9de0
7543028b471257bba249968b1e779afa
99bf38994b2c84e13324c3da3992ee58
368e6264426b2ce8a8fba610017ca47e
73fc59e737bc20e302e5c75868d8bdf7
47d48276cfd662a447c18090b0646fad
b64ffdc82339c1eba85ebef762961300
759f71ef7989c420b501a0b9c793d33d
6b0523553368b6ce177ebbb1fd502177
9977787091a7a95d3ab94e4b39eec471
8f3e36fecc81a9fdf8e7786bc930f36d
eefc5523b27e0870f7877e1d558c3e2f
c5966c3f9a4c6a269d80c672f0cd7360
1e54a8be753a4a15cca162db5d1acff9
6224021319ac7b9e03be1fe9668edad8
d7dce1d74fa9da77c0a5ef840f4cbe8a
e9178349422c0288f98909e3d0f11575
ffb8eb2bb31a4012725bc0a5b9ad7e04
b060670d3e13506ab84e667a8cafd002
eb88832bb8e658369c2b3ba9d487d81a
3a4d199da35997d6d8392806580d9b02
6270b6c0540e19cbbb75a96f4e5bb8ce
6861aa3aedfebc0f97b57a131fda3964
bef6683eb498cbc11d4e18ec8ee47503
55ecd340a4820e0103e74e971e9c7e39
b819a0507b55cdb4018c075dadb8b357
a4dc36c729accd6c6c687d7f1f8d0b17
210a8b6ff1d7d3000c1d87a02a00236f
aabc28aed2f743e43d379a9254d90ca4
7d9fd5941fdd25013d45f4473cad142c
8268ff014450d98979dd2bb072aae15a
26e0ea8b1efcb2504b501264d34b677b
f7fc26da0dda20e458a8744702f0741e
5caad8ffbda163e59bb5ffada35c3388
529e7ce99b07794f22250603531a477a
70fdc25de555fc6a47e4d13d7d5cfa78
412e66110bb669d0979e19ce5eff5518
14517ee15ec585ad0650489f4973276d
be47059d5f3e2d633dc6a54a5b5ade17
05b0562f91310a7a3490b6bb56f8deae
4452ea046914f707b1cb909e278872eb
SUSE LINUX 10.1:
cfa61cdccfc6ac68f199a42e339dfa7a
c6617f00500ed1e74a675ae2430a9825
d726692b355cbb0693aa8c1d14e97b02
319a88550814c8b3a1800fc662e598e3
1f8e15d379fc569f155a27a31d6d4ad7
c0835d1c704dc480f6a7b2330c87151a
2a40f2c2ee1e7600e163e84f1627500e
c9af1359b21dc8fb915324b06b9089bb
250886e1aa15a344606168f38afd1c5e
20ae973077f655eca2fa07f3d948f26b
c5afae2cee3b6c865c837b3857923906
3dbd3d136e3976ba378604b1338434bb
c90510ad5e15b56d2de3f11623aa84e6
8a4b7722437dfc98fd36f8a8b718e82a
d01c159371e4d41e029c327775768afa
0415819e9d0b6ab3104ecd409648864f
19adcd5b598fe953f569e7aff80da96f
355cea44c7d0871522ec40cfd0920321
1b557e8007ff6fd0caca286cf39bf087
cad03c4e79940ced660aa8c40db433dd
3a90fb22beb6abcea4c11a700366ee2b
a3a216196f8d4a835705d4da60e4658e
9b325dbdbe39228b264e827c2f3ade5e
cdb76f32e079720f96a76b0ea07803c6
c10ec624142e4378e5e1cc8d242717ea
256821a62db71b4e0eb2affe9462bf96
cba752b7b363920a6764959d947bcf3c
2e0136222861fcbd61d84458c8a015dc
13efd735ebdbb417cac017d1158979f1
8ee43c5527c6eb3a714448ffc5acd3cd
e11f1e7c08a51a89629e4134d5ee26f0
eaedcb82b28b1c076f93dd2573070311
eef6f473332b509e894f6130ca992d30
ffc51d88e907d8ff609527cfaa7ffedf
1fc796702fbca35dfca9c53ffb947b20
4eb395829f66393da32847486564b727
8d903f1e437c825d4f715591b4e82776
d0e8624adfb3fea55c1c28fd9451e41e
035c6dcd2df47f5e31ba1f0675d21c77
213922b044579bba975e396adf1035d5
675a80908dcabdfbe1785b24beda71c0
cedaaaa2326c6f506747cc9d691eb464
bb1c1c243b269f106c2d17ac2fec6d63
2958302815a1d44b0c15f75e03f606ed
a2b17aa3890763e79cae3385ab27c976
be1b67992e93f1b217c806a782e26f76
154251f4b3195707055272f5141014f6
d71d741be80f932aa551bd29ed245a5a
eb26325d66763beced5878139dffafe8
b1ab38e1f46e2db1fafeabc8d0182b3a
9321243b31fdae07752cc2353eff0d1c
861d87348bcb01438eb37e8107fa2c8e
f6be5c541bbdde6e46efd5f17cbb2744
381bb9f51d38cab2bbe9b809e69eb981
SUSE LINUX 10.0:
8c5b6132d5680c60673125485ba6eeb2
9b4c4d4a3980cdcc56a0b32d5bc0b88d
8bfbed06cd83d93ea212f4b4ee6a7d2a
c5d334e0e383d6791e1445509d8667fb
3cd4f6d7d1f4854a409c490c720c45bc
e0b6351e66d45b75623a5243a169af13
b7b67816e5ff0470319086a29b29d820
20fa8984530f1944bd74a8eea858d815
3223dea25e8984c897a57b2ba6a8973e
f25d3af72c3f9e90dcc34318e280c378
33ff45d6b75bb240929f3ef5f8e433b0
169594f5bfe535cb066f9a656f838dec
bc4f96ab9d8a19f5fa2cfaca1f6a793d
41d67323190bf82e1c9c26f99dc3d708
de3807d21dee0c4b7b404ce435606105
13bb3829087567c872b41140e96db3f4
ea729efcf53dea21bda218d462cfc1b3
fac6c6011f837f88a39b4eeb97845ae7
83d543cc5404df15e3da3c01a3c50dae
8f053954a20ca75008b941208c9f2350
d22fd7d13b25dfc35ff16e28e65c9676
303b335f652991656de297a3da5c8a6b
2206f66ed95cd4194fd3776ba2a88b22
49dd800f61e8548a9066054520e29d69
7202f49c52cb63a9bb530611f0ab2bd4
2a4c4d37ed784dc883db6f40e96957fb
9bb742ffd3d257a6ccc5f71b5acef573
7dd1b8a4cbccb4cb8ded7b3659fbf86c
4990a86f133f940ce3539c4d0af67cfc
cc7651c62b8d689148c7df1f1f540dc1
3b5c45d1a0d75c41c76f3d7a48c2e475
d429f8246e8c57d411c6e7ba24d73aa5
6bb6114e76b5f2d4140c44043de9ef6b
3bda874e0e283f21fe7481120ac94521
e23a3a4522547098f10ce92fb558e29b
ef362c1c688728d37707d9b0fc94be13
c27c14dd2921ae8bc24b76768e294ee9
4b357a4fb7ce1e372c5e2d073ec7e48b
d01680455f2eb184d9c8c90e72efb5cc
0dc7d3bfff9a84e7fbd06e76dfc9dd0a
67672088f282906758335ac0791e9638
33a08a9a2ea3db5c20c51c5fa22f163b
05bd2a7235756d82df1f551ccde36ce0
38cc73efc77e65c3789f14f710c21b54
ccd6c69b5be14d109c0cad58384ec449
cc5a9dde8d5f1c4b6e6ce1d58f80a744
b18c8561764c1d6c2d9a234adf68d4ea
2c823e9584fbfbf8b751c0c9fd2ba369
f68c9075309aeacd674d314151da59b8
049fbb4432fd85b026a8a3694b2ae17f
91bbb79d0a538f93eef7255bfe7e4d98
1aa31342d71f40b978eeb9a08f01a19d
1832b292820aadaa8c218a926b600e92
2e88fd104acec5348f5212c1fc6cd126
b13b3a94d6b8c1cc0ef25f555200c57b
4718659110dcc89911e3472cde897f78
2e00e79606e0d18dbfbf55357b2ca135
d6ee5a9e1261b5b5b080f35076cd33bc
3e49ad474bb9405472ffead20ca550a6
eed03bd7a64b2c20326dcd536a89aa3a
9f111ff7cdd655d19fa80ae0fdc0a37a
7feaeb572126c5ac64b59241f0426a6e
7ff78589e7b856f3868dd5af9084eb9d
e0bd6e43c2bcfdd19f94f92f8065aedc
67eb5fcfe5683247964afc3213142d2d
b3d3106388d39deb79fae8b72b3534fe
95428e5826c7b54f58840c6e1e146b84
706ad7078fe868daed4864b67d87ef0b
9c8deb807ef279d06f2391e8df0d015d
7c8d2854f8e1c319f6294201f9153b52
d6396557e1e44faf6d5b41d2c2950197
a22110abf7cf0c1e1dbf5e4dda06d069
c2e96141c112d534b7d4651c16a88301
a140dd890e26980e1420fb57617d269e
0c3d776ab8b8e857a3abab8c3b103b93
9f03bd3b8519b594caf085bdf55717e3
a48df5f0055e26803318199fc51ed55a
5b68adc285953c0d6f42ed58db8c5c2e
7540c03c6bdc768f8d8b7609c794b499
4cc6612b8be16688d234f80712b4f23a
8d428408e1d793d0930018ea524048f5
604c062339c7b5aa21fc9823acc5c434
c819acfa929aba460f7df8ae0c3c3487
5a0db7a68256189a1afc3764fb9dd89e
78699037181f5bdbfad44c18d6f15f2d
f5f52c22892abd5fe935bb13ca827b5a
a26b500c336bcc07ca3afdddef6a05ae
0a50bf9802b855964002eaf9367fc9de
7f683fb227ebf08629551a5aaa5fbc5b
19e932839de8f8623887e2572ae7931a
6dc4fae3a3511d279e448957fe7eb478
ad9f591c7cc243510add464e02bc525f
33a05e653ac63dbf9dafa20873a44b31
0b2bf6b56e3089f27cdb28f5a981647c
4053663ea116bb926075ff3857644f56
d7ece98f786039f80b3c25b1e429f8fa
f509dc9e57f166b3166e52e34ffc1e54
SUSE LINUX 9.3:
f3af103fe6ecceecab7771fdd7930716
91f3acf9016b7171e9b69e0e124910d2
1ccf96cb9cd704e54820fa6b150afa96
16564db4fd14d0c139639009873633a5
9f480403e5bb457c76708c1d511b2ca8
5ac2c675f5c1faf87dff02fa070287db
66e7042e5b844eca3689d526ba05ddd2
94181bbb1cdd690e9e8ecb774ebc7cc2
c9a2b77f3052b3f674e2c89eeea3f12d
2c0290c99e1cc8ced936c11022ef2c54
4198be927553b3fe2572d2189a6ba0b8
46a59f1e8ba84c4ff58b2d5645ee1ae9
b3caa473169464eeb69a1397631bc6c4
c79660fc6f7777d4f2fb8c61d8d07e7d
ccece28a76b6122ffb0ab060eb107b54
525c9b31016ae35a23d949ff78460166
ca35fd0e9392c8115355f0f538b672ca
ceb00acd6f816883b3cb64f27efe032c
6c4ae6224a2a8e28a6feb62f21f64006
b410007c84d41f623858f3cd4fda1b8a
952758749e45acecae29321781a59422
daa0b719e54c6cd02c798044fab0a299
0c218da2c8db3ee446c8fa60f65a1cc1
e2fa611fc168e74b0a12a0545902ee25
4a5da6bdad257a263af9c628d641737e
ee474ed75617b7aeb74270a38937a916
6e2318b4e7cee914e8e3b5670bdffdc3
154895ef571191089e8e0f72446d6cac
c2277b2bb5d9750854d240969921278a
d3ad78d36fc5385a88d1192d0b033706
95893661688ddda409116e7d438cba86
19a1788713bbb3b4c9aecd2accb0106b
81b4b151ce653c1399ca2472f9f83503
2da91dcd3820e25aac421b4d42148ec4
81bb7af17e3e75ce3592731a4f8cac03
15ca3a16cb1ba6207e886147126f0e8a
7e11f88b8c260ec298bb0f578e088881
10974278591a2b0190a7e8c090fac682
c81083cc5f3fb4dcf2120e424a0c6824
214644d2aa8dda8fe2043953aec86fdb
addd109d0743ced2ed0629ab32b986ac
c102e3c283813530873d1281bce976fb
de89ef33813485b94a0fe94f0fd22e12
6a848a68a53968b1a0cc9c14614137d6
d31797c8ccfeed9cda86ef96f41c3020
7fd9f4d2f7c65fdefb8381b3d2117107
3f20e926daabdcd14ec9981a4bdb7652
14de5fc95b996324954f67e6523e1e02
7ade700794f97f2d6c68c74cc705d13a
d168e01ed2a627b2063ff1ff1fc4c7c5
d7337c204095413123c0345e5a662dc8
1085934d265fec0069641ba542eef4c4
520216e322850bd6828abd724622b2f5
edeb2f44fd7f371d688998caccc2561f
9bddee10cd1f294d1386066232bb0dfb
6867218c10072957f82cbf36d5b8e381
f60b67dc73e901d819ef38ed842d9dc7
9f57574c979bb2fd1e8a573dc36328a9
fff69706b5df58b8a21a3ab40b620d07
92a44d8fc78c7a3a25dcd468aa8a99c5
4b6a6804a2bdcb89c9333333115ca522
6e8e26622cd459bffda503ec6ca401b5
af061b6fa27ff88ae9f8440dcde805a9
87809f7ca0d180688bcceecf80640d6f
15b86b4bd21b57c171c9f8ec2997ecfc
80d0bc70f9a7a316eab7ab6b29802fa0
8a33cc7d944f277ac33ddbc3f3924570
a29ad6ff21290ff6e4acb344674dc59e
73bfc4c364f8c5e72a93451ddaa2945f
c44b64fa40fddc6353915ee01ae723e8
09049a6fdae96c55d81919e03ff0ed12
e4955773c133613a62210254eb68ab8e
7397d1a7a7f11371ce9cf137b7a1ace1
2222a003918e14ecbf98973c4f97a78a
cebccb52eb3f5a33969bccb25383757d
d2b0863cc0c48ff72dd61d8c3a586c25
9c5e131d6859a9e617387a3af1b58a88
64ad1e413cd3864165bb4480de133853
30704f46b01163df79244274c2d1bff6
79309f22fbcf6ae43a9ce828032c3269
2e61aa83d966de260433438ed4ba3bc2
030ca0328def277ac668b2720fd7f092
3ed333f983aeb0b4a74c474f3c20e015
59b9a457604556cca41fd585aa37ce07
c77b3104b28b289929a6bae0fbbc5808
68c1eec21cb0b5463e1451718d39bd65
9feca03c6a8c1d9f8fff68e3f87c2a0a
c5cf79c03507882db3fb365444022748
1e2c2b9267f6941f21b8cde78e36b3ae
88ab25d03d66f4cd960fbe8aa704c24d
1ae644f51b7502bfd8ab25f201137d6a
e22b4117c6204a32ab066e1462052be7
88fc5cfc075faaa25d9960b36876df15
fc5e33191a1874a423c7861bf24f1fb2
1b54d64a5a0b2d445022016e79c6e73f
42fb01da263b746544e253fd75c74d8d
8159e935d8da7183b40d367b938a7727
cadac59c8c70fde8219f7205c945879b
Power PC Platform:
openSUSE 10.2:
97edccaa0cc0c9500be7a8ccd0c2cdeb
ea81b88485cfb3740b6692176b3a0c56
883036792a8543e9132a51a948fe4e15
8f603d53790dbb11dcb15431abc10b7a
7034fcb1bfd8c7fc92664a3728494350
5adfcf0473ccb735adb8e79a12850629
d140ae42bed18b9c4ff0c4deebc58879
a2041c140d9b9263330b9aefc313ee45
6a2a91d2321c1de757b9b74e26103172
7478a01656323fdf344c7a455cebadd5
aa331d5ef1d176e381195f1289b80a89
4dcccfe29ffefe0e978eeb5b2468cf65
972fb27646adc369fa7f58902d55578a
068bfd8f451b616d244e135d16652632
3344044022fe0231a5bc526268a86052
6905a7d168cf324406496ab1976ad3f5
7d0bf20e633d444918afe07915504cca
f011c26831d5f8c72071ffa8a05acc13
82f00dad0e07ec1be82d3fe0931953c5
c7ee0e1ff74bd4099685256c395b05aa
ddb26c0e9b1f7d2c7a22096b7d7c3242
c755922093030b237d644fdbfc6d189e
b06e0c3659d4831c6b0c58e145fb3fbf
068169bd4b94b267b6a282b4cd97484c
bc40b0ffebef74ce4f01f3a63d4f2235
785213bbd146d0a0cd800d4438c05bf9
2d77a70f57dcbf55ec66c3dca5eab38f
0e13a6eefe7a46ecc33671048e6c5b44
fe57cd8f436cc67bcc177bb83ebc5606
32f9256b34b59ff9bd600e074b94de38
34a9c0b8a94b4e98c4efb78a5ff83487
78dc62e07773cac5be15b573c6bdd0e1
aa9b835f3e2a9781b38754cf6518b3f9
20dc6f76178935d08b80f6f26119473d
386795cc252f8132a77270a5354aa1d8
87389cc9272126e73e5c587ca085f737
a8b35abf037c59d181cd1da96f002200
7354be32ec5798bce0a5597313458264
8429a40da455937670d2e2550bbcf220
bebe5da880277004d3752e334a247205
ca2f05c3a1523777ac19b33292d5ea96
3653f55c376d1bcd989ecc90359edee9
1b4fcfe260a6c235c68f8ab2bcfa3c20
c9a133e04ffa336b15acade5e0797f62
f7859248d25a473184ba8ac6799236b6
576c02b10451e3ce3e83fd2576da3d59
bd15ae8ce81aca05be8dc9e9d3df7509
383b7e63e195a9c8a523d672fe516d7c
de3fc0a068441dc8019a2bf8b46fe013
ab54c1957be363c5a9c32b1170f7a436
1009dcc6b2e10f5eb33788655f460b6d
4ab48611fa26a835a2be3607fd4737ae
08fa8db25756056471621a0a26a7e552
SUSE LINUX 10.1:
e424e4540c190733f08cb7d4ac6250e0
6a037bd0fe9770bafe6aa025de35d29b
d7b420622f31a957ba073108dc34498f
a649560bca8b08fcc28c8da2519ea59a
bb3eed050063fba33c751e8b8e0a5df8
0eb32762416ce16f87504b19b5649dcb
022dc5923db42932b29a0ed387df77ea
eff6ad2468bfba2b68a66af518c7eeb9
5ba0df1e6193a714d7e35f5e29a25d7f
2e832bf81072d3a2b1e572d352d571ea
01aa7424fe46d580c59bd51d0d8337ee
d3205cd0064cc2af89d12cbf7e2aac21
afad3ee32496c4972b50c4934f5c1b39
62a892cc2da1362cbf2c86055c6cbdb1
8bca7cc2b3be4c553edd1cfab943adcf
b967015b4414ee8418eea671698ed23f
31965a77f4d5026602ffc67e7415599e
acd3e3627e53fb1cb34e97a8fa73ecce
32720977c10f2b5dc810c7fd1df3cbf6
1c247d318a5ff513bc5a563d7e553acc
a31e3334686d880022f8cbae0ed37f46
c3af029beb3b821c2a0755aab8cf9de0
8e8f5f803961e6905fb048211c1dd7bf
9ca823798cb8c24b74c421c34397fc18
c288165446315e2f9f769849a050b8a5
ea91792eedfa374e5ccf77bdf9236237
4545c31417a7218cbb2987a13ef58092
db573cd65963d94539fb0aa4b2c29e80
8b7d1092d961146ddf2500213a1c903b
35dfc760175327b927955c0ce983af6f
34c34e7d14fb1674c8f9e026f85fc300
d534918ae4b011560a204d178d4d733a
eaec3a8c4cc6358fa40e5af85ffef893
f7c922fd635f3d73599d995d8ada58d3
2ad265009c01392b01dafcc5a4896a23
71de2a8761cb61256e0f0297473e13fa
9e24be7371a75db1b763f689d56a433b
e190360f5bc6ba3ea0929e3d46d0dd06
eba2d51d938942130d36cc5a14c07467
092ff81b7463de03c168251b292e825d
734ed2b5182585aac690fcd896ac8835
5fffcdf7743a392d2b6683f604b825f8
7955649f7470abcb95081dabc5e97462
3a01ac620c8be6f5fc950194a4d659d9
9a9cf1fd0f63ca6b9d2b00f210c4e35d
05e5724f9b8d6fdab6c7a9c594c4a32e
ade18d76a6a9e7105f7925ad99a423c7
ecf060bb0800a0f40528424dabd1b0b9
412e79f8bb431d055e662990e9a8d5b5
937cd69c9df4ae66f2eb0947f027e417
7811b9c2cb3ac103f6ddbecd9f16df2d
f9bb0f8f0e09ea430a478ae0bd5f4465
e5a188cb6e10596a55aea81ab156f67a
5fe3326a59d6b29fcb3bf1adf2484836
SUSE LINUX 10.0:
03a1503be2b540430c6d7516ef4da241
73bdaad0bfe6446cb0db00e5419c4d76
12318d6c118193f6d591a9ced1f25171
86f40cbacd92be9fec441718ac3986f1
2525b225d974813fcf6f5917a4c941db
8ff71f03d1f76f6db79b76f8dabb81fe
e8bfc8f7b00e4e2a3e86ee2e30b5f14b
78e7862316ee9425f37f0442ec58df04
41967fdef76b0a5acb5b38729cffa849
3cc285796e708ea305a8ffd7c367f2e9
300472d44c194b1012591a53d613148d
c776195ee83d8ff46c12601072e64e36
48804aac5d362fed21be5ad6c2ea8721
9e8adb3f5645aac9401f9244d7138295
21bab8b376adb3f60e29011447b87e75
f03ddb710b52106b965f1d5c4f66f44c
5d473969ed860141d8ce17c79f223b95
45af2db94740e39c8ee06a68f504b4f8
f9fffe1530b3aad9094e78c901487bbb
99f745d472b9474ee0edea744cab754e
bccf8e6695d98d693eb1963f39d45002
e47607c5125121217ecbcd55a9e91eaf
d074ec4c0b7a84bdf1843dc071b8c394
b00b9b571ca8f93698b36449623c2688
f621badef483c01963ba42ab040de954
85ef0091528f1efd854097f11472eedc
d375ba95b7b7342965d0139c4f0e8280
a463cf60243c4e2cda8fb35c437fef32
bf80fc4c6d1fce74d048433a5f100691
25c61f25876963aec7810ec76991db72
bb7e9c81f909f8ae6847fb26eac4cb5a
b0802b53c1aba5f07bbe2cebd98bb0aa
1dcb98dadaf54a84f5fb4f193eda6226
4efd8a5a425f89bf061258e4b2ae2fb1
099c0bbb077b6aaf6b7179c090e633ad
8e84dde8db04ba519fcc8fff340bd8f9
7bc427415e8212d8f496ca1d54160746
4ba334b2073f58674cb8b670678be5a1
b9934a524024d0a50c1540776a9caec9
a0112880c79855228d519faa7e196b0f
423305f71c1133054868356c9d920777
232b41ba3c76f707251e78a6d8780811
7c04d3855426387d380a0d0faa2d0458
c869193c668b6a1d27b50c564cc07c54
8c73af3076b08d6d815e1b0bcf447d54
eaf0856b8e4471d6612995e9a1929987
f035a73e91be0af65658f42902ffee3e
daad374d023f0611e040dd07e2159c0a
1b7a64d9c775a9b8973e0d55336cbece
d6575ef7c735b126c07ec503b74be9e6
471757df83cc5b607da7f6360138af02
98faeb31eb3c652339e0a8206237f92d
d0b97ff85ef6385b3bfbf4f1714cfc26
8882f8fe8f79e20e60c66ded9e1a1cdd
4e5cebab9dd76882778c15ab36d5aa4c
6e922b97f3ab76ee53ddc8a0698cdac9
9d0dcd2c6b6024966ffbe2518f7c6677
973bbcb0ae857af9cd896b39445d2bff
6a9d42d625a0da44bfa71d9d0c60f00d
ba30f3bf87e4503f115f66502005a104
ebdbddf95cb556160c93af0345401e32
97f1f3aff84649415c5723f8e8cd390a
939a6dc9a89e8f5d01d6a7f90394e309
a8287ad07b49e23544f4e514fba2cdf1
9b901eb7e9aa7af9348eb3e799bdbb52
78394540ebb1a85320487e0f87041a48
939dba4bae2e7724160bedf2dd8c2a83
308b5bdf8769184611996b216f5cd187
ce5bf7387779f8d1616b8f2362b3a93e
220074a4dab407af37209176c66e0dc2
555fdf8bb1a83234c458f2152fdb3029
a3ad1ee014be9639b8ac1753612d8e22
e009ee054591361f97c93dbcea3311b8
56c69a0ae1afffc41c0cdd9e3c90a8fd
2528540dcbf0fe193b7919d30de0a6a7
32d0f84c42f154f2f1baee82f818c40f
c50e72e6b453b60939f991dff0d4a283
729b81ac7ceddae7afb7bf9d2f363380
c744f88afadaa51b3368fe7be615c013
c3d28aa9f92da6b8384e3d92f659222c
50e1bfda476e3a481e618f1c9b872dee
b33d4e109044f48edafae0daa2c675d1
bd6d8a061f9e4f7209e9150e42224263
751c737d882b27257d1b5899a3f8c6d3
fa9b9402ae2920f7ad502813b5f730b9
1d2ca0606c6c4092ebe6f8f47af83b66
aecd021f59f544ed088e6687be2579b7
fbdd6875e1ea4bc24a6a87697512ada6
631598f745c51ba0d7a33d81113480a1
69eecdab50da62d0fd7de7d4e54bba27
c63b486b19c3ea18fe2ef90ad00c5ae1
8f3b94b34cfb96badf47ec26826106c6
1ba11be42a5581b70ed9646ff87b4125
c8de5fab8d785dd939e9ed1c321343ac
x86-64 Platform:
openSUSE 10.2:
14f41cac7bfcb20000c3fd7eb9dcbefc
fd48ec7f4859861511ae63f3fc3f17ee
5bfef7c37298192013030d76c936509f
9aee460227b7335cf5b0f110ea00835e
5c4c7797cbaa45c1d9abc3c7a1852105
be8239f4444fc6c9ebbeb256a2fe0437
fb35c8af9b48ee4d845233ae2374fee9
d1e61486808be87e94c924c5f8487385
b4a8a97b306c3ab099cc1da0aba3708b
704f268bf2f0fb9c5eb4f069519c41e6
f351170d4784de312b561b2aebc828c5
523ac49d8f8757e7acd3cb297a683c8c
fe37d2c613b23d987ddaf3284154418d
0a7101fbb349f1d2d3bdc539ba875e62
eeacbf6bb127f78442d563a6282a9c5b
260bf70b390061c56f221ae58c0e5467
f0a1ca60a1d53cf91107c9119f19e3e9
22115f5e734adb07e049e54b4de2dd26
829edd78bb599f457bc7946eddc4a50d
2bde2180783484f2dcbfa3437cd03b73
57a50022f0bf1b43dd1b63c64bf8624c
9639b904a502505a7cd231d668baaa33
2ca63e61f8c274f9a93ec0e425b1c56d
6f48a89ff5aa19cc5e645a03184a62ca
8c62d3892f676ef3606443939fd2bc03
e0537d74214ad3681389e07f58ebd78f
2fd63aa3adf70f0daac20920594ff191
ea5159a98f3245a50e1f0fa403f5fc5f
ac32eab2f7c1196e5c82c4bdf321ec17
1e82fc8c2ad523430f4856dc6cc71e85
22e99d5c0841fcccec5d31ce81c57bf3
2303d48696ce56c40b33d87cf1d40b0e
8039c980c0cb5c89330dffb01d1e7648
9657fcaa13af3ec9901b30c56b30716b
cbed323805302585dd2389421717fc7a
9e55fc30b82e6a7fd9b1b3fc991530e0
d3d3af7b93c948896176f7a9a0c3242a
6798386d490556cbc12c52251ad68bbb
66c5e37b8633b8a7ac4db30659b7a6f9
f2be58198bce31ac8a42be1bc8714cec
d6fcb147b57a93db4cec4d68c88ca6f4
c05b21c4b37b9453e38e301d1b21b35e
9dcca603a210058b76f2ca89618a7758
dacb0eca4f0a6073c56c32179169bf71
9fb28afe2655613e390be64da7cd4ce5
3b56474eb01868f0f4ff3c4c6ff3bd82
4f2695e33399086618d245bbd3b75084
9a2c98acdf83956cbc8b5f8d224e9b17
358f6754278030bea3c94f2d0b6ccdd0
19fd2fb89ef9c47efa208981ec069edc
105f48aa2668989596561cdc358a4f38
eae144593ba91e89f5b310b05182e390
36af1ccc5ae8c37f35ac546a367b32e1
SUSE LINUX 10.1:
40dbcbe0641ddd3b2297ecc509301ae1
d08da73966c6164cb1f8d4e191cb2c8c
93c627a584f19ba37278e3386d8349ee
d7e0952cce5abcfd6af96ddd14969cda
0d93c13caa12a644d520958fa8f9023e
94411f06f7cd02364a3f97378bbba28d
c8c8d5773ccafaf05b8b3a8ec52fdcd4
bf3277293b3fff3e96d199a3a999e9eb
3335249c0e50fefefe591e0fe24cfc59
73fc88de0983b3a906cb57e217b55b86
1ead8927c9802ea9f7a6cec8c52e9c56
6dc2c04bf7a9f53f19d53c6447605f1a
963ce74856d276f7488e57d3b8afbee5
40c9f8df39a10fca47422823eec9cf29
cc4572c711f6b0acfe83f49c4943054f
a846ce83416d78b8a66c2489e19ad514
1acfb763c804390dedc5f778602880f4
acc9399dab324cd5ebd58a7118a17e68
1a288a6b326787329b90a6249258869f
71d57de75abb2407ea64041cef021c8f
53075981fe368d4814178ffd9fc6db04
d79dc83f5a96a3011840cb49b26bb599
f748f13c23081d54dbd1f9bff7d32a66
1100458d624c596842f0a7995ec89de1
e4e762e2f80e99734f2ac336e52c1a79
a9aa7dc5fcb3bfd57c430457bee39ef4
702023f1c8b4dc078be57728ee58c91f
58b9d8c8100b2679132e250ca191caac
0753946b5902052e8bd8db62f0b77e77
2ea657761e4a5bdcd537c73c32b50f5f
92e0f09733192b374a3326983372f0fd
9d2265e47b42f942a5fd72760fec6429
e1525a8b1bd9f9e62b4144a33b78ab59
97ec0b44e82a3435a831548dfcb3595a
a4014c2fcc9ec5253863a5d2f7640903
bde20e33ac1e5ec8ba975ddb4b2baa0e
9fb666c4c5da670b0ca0c8bd47f4215e
77df46bf409a4d6ce3dabdb714d2ff19
e8067bff0fa1a75233969020d8452d19
4b99cb8403b0aad309f415fd92091845
3c8919acd679d0eb2942788cb2a9e286
299dabaaf9197a0b64bbe0e822c175fc
d2efa151089b2578daceed3418b6c35e
e1f974306762c48bead32ac63bfbd769
19589522ba7817aec1aa4b10f98547d6
bd482dd34b31301879d7ee05165f3e45
c035a580b865706bd85010d02ff67d76
50fdef6fdfdb616d6e54703e1cf16af8
cf24b688e2141055f829ca8fa1e3e42f
11027ad574b0eb7082967e2e17fe2ea6
ece01b08ea21f3150f70206090efd309
34a9e91f56526a46120ce84c63ae7251
9cf968ca28b6e200d337b4af98f415d0
aaadf1f57167cc6463dd540952d58642
SUSE LINUX 10.0:
75f5d28f7f6f6a0171a189c9b562dfec
f519c9ac612ddb824d26b52ab6fa232a
b8febabd588b792c953dcb2ab967a04e
0b868036752fd5e4c2274a6eb14520b8
d86e779a6283f258c09396e076e0f745
36c50837a543b5f38b621b6807425f29
c6e7ac86432dc7aca235d0c5e6cb7bad
7b0871aa67709701c7fcc745ebf7934e
18d87e1ab6704489f01d6b87d22929f7
8018751460863af2b40ec33982641266
6d038637b167446bbbf9aca8993574a4
38e4b440bda6942a4d99ec8f8ff4b380
034fe63c03cc0e219bf64a298f1dfd59
8d221aa62f00b6e355516355d47830d9
54a6c3f6191e2f2581a30a2b78de2fff
c99b910032b541465f8cd70d73f1a43b
a7b85ac6380afe8c2e677337b18de564
cc0151d88d66171c772a1235de130d21
77bb42b33c3d585fed674b1dec854806
7485056c9ae4abe2b7723c9f1826ae72
cfdfc928f6c2e8eb1e9eaaf91db00c60
48a74f2bacef9b92b9b1f5b5dea89d31
2e1148d6a47bbda96617e7d52c1ca9a4
309ec0716eb1b1db0a381967de38f246
eb4565f7e12f5d2876c1726f4cc67a8e
40c931eae28049f57ed1fedf1a1d79f5
800b4f96ac19cd5831312f1a7c95d587
87340b43e01df6a046eb4336e73aa7d6
a2b6e226f4191882dced679e7d86351f
1b71ef9fae40546759bb080566529165
7678342498be322233cb0fdab6b555cb
c8abf6882966e477cb64e2b65cb15941
3a9d3985f2dc7cd4a9fcca5c6c6153e3
25f9853f60e6cf3611905ab258fcfa60
058b3a3a964ff511ecfa635e842f19b5
2a79d8e36d22d0c73e55eabc141b1723
a8617f46a673e251a1917d25433ee996
5f911a3fc32ff35fc4fb73e1f2addfe8
be089e25eb40dd6c51ddbc8963150676
d3324b5d5c96bab57d62f812ee1c3241
2780aacb38f046eac8212774de0855ea
26bd1b5c0a11ffd9fb7b695ca1ba6e54
b46752cc61be4c394195e7d47ecdb0ff
efb4cca4d0e2940f545be8431421a0b3
419495c7be7caf73d81c8dd77a97c2ba
de6d78c4c5fff218788acdbe26152318
6ffcc052acdaff00ad91161cbb438c9a
fedc329fe634811effbcab956a101af5
a447f08c1d9d1106527fb02ab80c46e8
e98c81978e028050f1ce30504bc74535
0181efa3c6c3ed2e8160cb60466c31f5
d1afe7bf2a347b08cd0508b786b73629
4bb82c99a867a8d5954e37d9e0f9a051
3acc280946e1564f9b32277038736d85
40386ed22c9506909e9560ba66e583a9
c87b38dd2568ef9ba11631271cbde4cd
fd3c16631f2d762958efbc560946325a
8587bbfacf6b46a6cdb1fbe0a1374fbc
fc01d047635dd95e76eba0c496481d6e
7310a606548e60af99b3e6b4c0aec6ba
40e2dca61fd9908e0021e72797a15d95
f2d9522a76234eb93929b8b7dbfde8d8
3f23fb6869ab5eb28d2b76a964759124
fddb53ab204902c41c5430661de3a7b0
dce9dd863aa678e5a6a01531312a8a95
22a380fd7dcb508fe7edbe6e5c84ccf3
b6907ac661e7ce7e8ceb11dec3803200
7375ab5093bb0a070f3e7877e0c121d2
cc0359d29cf54e73b2200abb30568b58
0f6e40f72fc8bd96f2568720c6fea6a5
b9d63332f98774ed044cedecc12bf013
a35d3b1675d6330cf0c2425a64237027
5d67ff677763bec4f6eee8afabffa508
367aa8b0aeab4f0b680c249e8584efc3
ef32325141d64c400bfaf2996c084640
b90b846410431a433c12363684a403d2
1f4626a7eaeba1cdbbb03c731e0646a2
82cc2c22e6bcdd8dd553ac55d06c5e9e
ccf8f8fb6b85316744523a1d789e5fa0
1c647921da295c0a13e325b0f3fcc7af
0b4b0f48bde642dccb44fb2d2b9e8224
095e15d8d7d8adc1f90fd68bff31ca4b
52b832c1594f1c56eee596c66176b492
d24e9f9b33240b14f5378d5be21871ba
412da23e3d8e5c8b00132ac024be72b7
011356fdcd334557c9da11ea4990b1ca
67d05c228d2e18ce45c3cc1291ab3a22
c93a8ede9896936859a596db0ba69546
1ee6cc9a04c62db5914a47557f2d410d
f7c98a2dd2be3ab9782ab5cf9512dcef
df48b93acd64bfa173bf83b3c5420765
39999fa4deb6dd521a461dfa446c5c31
2b4cb24a29de9320f379d53ebc7609bc
3f172f86135311db15e5d217bebe06a4
b7f06aaef67d86f5dcac9a00ead0d99e
66cc8724f14910ad1ad23359bae86682
3d74f496e17cb5c933f3e746c18bec82
SUSE LINUX 9.3:
9a09d3241c32d1fdf7337ef7e5554e64
b4d6b35f5a740ad04892319b914895a0
597635cc4c0774a894baa6bca1c4af37
3fa2f1ea6c8aa4abf79cce2f50128071
737083cdd24e375069229f57388ca6b6
bad30f2138b311933cda9c8c1229ab82
e364e473cdf116fc4030e49a4f429169
98b2da72df03d50fea8ca9d148c5d6df
699a74a9beaf2987779cbec72f74603d
7faf1b2809bf6480a02beece4d52424b
dd5d581d226ca5e06ef33b6d032446b6
f43925245ba231571b7645bd2427605d
8fa85e839d69da19bf41cac5364bdcde
2f05318e24f70f9388f3478f309e1e8f
b48ab05111ccf6bb99af6166a238f35b
f3e5911e94bd96680a233c67032c7b4a
0a8674a52825faac1efcd4ac51a6d7b9
ea5efb8d8e4799ee213c56c4d2a6e694
0be1e1d007d8394eca27548d0d20cfe0
13079655d51bccb7819930651f3b8ecc
c0ca8651d9cf4af74012946657a10af3
c379268b0766dd6589cc6322c51833af
6d35392a923b1cafff314796979be9be
da986ee7daade9f0f6301c5e7bdbf20e
2bb1fd763a2ebf520519ab05d9de52c3
2fa2593d0a206525d70541adea89ccf6
260d9b26e0ca7fa7b5f6c2e7c063aee9
675f88c87b146d62741536f6f2e1f75c
d4c6e95794737126d3b9175f7d64f8ef
56ec14a541a99e272258aaecebd15497
014b1117308619e7be279047317d8412
60ebe32c6e349fa0d0c10b38e87adfd0
861d6ea0409aec4c23891443fc9cc78f
b9b39fdf008ae836c705ababfa0cc052
7c944676d041ade7357d0583aa753a47
35f14c610d0515e5a15d1fbda968254c
2b718ff9bc4e92cc0e98df7f7343df72
ac3a26cb9bbd99efa924fab784c89d41
e80254d872797d8fbbaf03de43187089
62fafbba3d113e75cf0332fc625d1c5b
48b49b81d2086e32bc21a3e2921d0787
271c14eca773b906552f825b633a17a2
dd43d7838c0c987a560455add46cd49c
d1eb8adc53e65031914b2a063060c466
0df76b46213b8e9a3426e47fcf978f42
a374097a7f4866422c1c049a05f1b0a1
c921b40fbfd0ae7cdc328c98abaa5d47
d93f83392380429bfe18fc648f50f9bc
65af5b874451250841968659e7822041
3a8b440a824b2f58bf54db6b06a39493
077305a2131f022928ec9c99e1f76093
eb45fe4f2a85aeae88fdfe819b54ec3f
316119eb6bb879982d09be8820524331
6fcac9e1ef5ed72e95fee2a75703e77b
905550605e2c16895c7ef9f3aae198e0
218747e8e88b895bfade6ac66fd0d23a
e5f7254a0331f0b4d6f598cde19ddb59
444877be976cf3bfdd94d0ffe1b89b80
26af746426d069c2a2f6087728346ecf
0724d820f11df4f87540f43beab2f142
c73f095309b9a3552649ffb1e4a27d1c
93dcac156526de506b4a01cc6fa80c4e
d9ca9d53deaa0dc908117d98ac46ecc6
b667f79a594ce8d6bf5bba73a0fc7d56
252d2ffc48aadb564785baee6bd24882
6abc790048180ec6da9accfe2da95807
1227f4ec02b8c8e8209663a2ca7e82e0
dcba4862eca29e63cb680b1b4b959ef9
e87250e23e60a46edca8a3c71584a9af
66714fa8ec9e5977e5d38964ce1dbcd9
cc20a47a3cd08fd685604d159691cfad
494c5d3a42dd7e0e6ab92c8f24cd7803
70bd950386579ae58e55987505ebd624
548fede8ab904ba31bdff3b04a661775
992c5681781ed7cd1c167d40b5ac644b
a08d00ec5d6a381867a2030b889970b2
f4daeae40b365aad90ec7f83896563fe
d5f9da97344b214f7b5a2d581f2c80ff
83dd3591e3da21f0dd0cde7444c3feb0
e63f368a27fb72c3477acccbf156a091
61a5b4c48f9042c7f4c55d9d4f21cc3a
5cfd1f4249cf336b8b793cf92d0356a6
0bfc915c35b7ffaeb4d788d702cccba0
c6a8a3c97265388b3fe2a4e5fa72e561
9c00b679c90349040f768c147e0b1e4b
b340660bfa9088d2531ee269317c557d
561fe484d9e9179db7d1602ff87ff017
f7208577be0c483404c5e4d68ce41f5c
bb8afa7b1518c92248ebcb121ea3dd98
59e0ce57cc71b778aa253d1aabe5bb3f
e2ea4de3350010d36e770352d398acf4
58144f579d43f3501275191401062cac
485f98931d695a323b203117058a0d70
6f7be364737ffe76563e5459e2181ca5
8b0b0a304528e61eddeaf74780381d84
a951c7c272d19b573108846a921366bd
c66637f5a8514b3dcac31d2f6501e939
a461aa2905a95da64b4faf1060202f1c
Sources:
openSUSE 10.2:
480f6a395a9966f0c852ddeeb2a8432e
SUSE LINUX 10.1:
a5ffdcdebae36e3ead00f3bd0c9e7abc
SUSE LINUX 10.0:
7f9278ee7345bdfb56f4bfd562be5c2d
95f335832384323a001268bfdae37153
SUSE LINUX 9.3:
28cb0ef7d3c1a2e749f435a299585729
47025a227233b25e2176292bd30f9642
Our maintenance customers are notified individually. The packages are
offered for installation from the maintenance web:
SUSE SLES 10
http://support.novell.com/techcenter/psdb/24bcc1ec811335d2d94a608b33d39f6b.html
SLE SDK 10
http://support.novell.com/techcenter/psdb/24bcc1ec811335d2d94a608b33d39f6b.html
Open Enterprise Server
http://support.novell.com/techcenter/psdb/c3551a01d5cfd4b788ec2ae2833cf2e3.html
Novell Linux POS 9
http://support.novell.com/techcenter/psdb/c3551a01d5cfd4b788ec2ae2833cf2e3.html
SUSE SLES 9
http://support.novell.com/techcenter/psdb/c3551a01d5cfd4b788ec2ae2833cf2e3.html
UnitedLinux 1.0
http://support.novell.com/techcenter/psdb/3ceb58d19e5a851dd4b8684151b05d04.html
SuSE Linux Openexchange Server 4
http://support.novell.com/techcenter/psdb/3ceb58d19e5a851dd4b8684151b05d04.html
SuSE Linux Enterprise Server 8
http://support.novell.com/techcenter/psdb/3ceb58d19e5a851dd4b8684151b05d04.html
SuSE Linux Standard Server 8
http://support.novell.com/techcenter/psdb/3ceb58d19e5a851dd4b8684151b05d04.html
SuSE Linux School Server
http://support.novell.com/techcenter/psdb/3ceb58d19e5a851dd4b8684151b05d04.html
SUSE LINUX Retail Solution 8
http://support.novell.com/techcenter/psdb/3ceb58d19e5a851dd4b8684151b05d04.html
______________________________________________________________________________
5) Pending Vulnerabilities, Solutions, and Work-Arounds:
See SUSE Security Summary Report.
______________________________________________________________________________
6) Authenticity Verification and Additional Information
- Announcement authenticity verification:
SUSE security announcements are published via mailing lists and on Web
sites. The authenticity and integrity of a SUSE security announcement is
guaranteed by a cryptographic signature in each announcement. All SUSE
security announcements are published with a valid signature.
To verify the signature of the announcement, save it as text into a file
and run the command
gpg --verify
replacing with the name of the file where you saved the
announcement. The output for a valid signature looks like:
gpg: Signature made using RSA key ID 3D25D3D9
gpg: Good signature from "SuSE Security Team "
where is replaced by the date the document was signed.
If the security team's key is not contained in your key ring, you can
import it from the first installation CD. To import the key, use the
command
gpg --import gpg-pubkey-3d25d3d9-36e12d04.asc
- Package authenticity verification:
SUSE update packages are available on many mirror FTP servers all over the
world. While this service is considered valuable and important to the free
and open source software community, the authenticity and the integrity of
a package needs to be verified to ensure that it has not been tampered
with.
There are two verification methods that can be used independently from
each other to prove the authenticity of a downloaded file or RPM package:
1) Using the internal gpg signatures of the rpm package
2) MD5 checksums as provided in this announcement
1) The internal rpm package signatures provide an easy way to verify the
authenticity of an RPM package. Use the command
rpm -v --checksig
to verify the signature of the package, replacing with the
filename of the RPM package downloaded. The package is unmodified if it
contains a valid signature from build@suse.de with the key ID 9C800ACA.
This key is automatically imported into the RPM database (on
RPMv4-based distributions) and the gpg key ring of 'root' during
installation. You can also find it on the first installation CD and at
the end of this announcement.
2) If you need an alternative means of verification, use the md5sum
command to verify the authenticity of the packages. Execute the command
md5sum
after you downloaded the file from a SUSE FTP server or its mirrors.
Then compare the resulting md5sum with the one that is listed in the
SUSE security announcement. Because the announcement containing the
checksums is cryptographically signed (by security@suse.de), the
checksums show proof of the authenticity of the package if the
signature of the announcement is valid. Note that the md5 sums
published in the SUSE Security Announcements are valid for the
respective packages only. Newer versions of these packages cannot be
verified.
- SUSE runs two security mailing lists to which any interested party may
subscribe:
opensuse-security@opensuse.org
- General Linux and SUSE security discussion.
All SUSE security announcements are sent to this list.
To subscribe, send an e-mail to
.
suse-security-announce@suse.com
- SUSE's announce-only mailing list.
Only SUSE's security announcements are sent to this list.
To subscribe, send an e-mail to
.
==================================================================== SUSE's security contact is or .
The public key is listed below.
====================================================================
